Skip to content

@alexlarsson alexlarsson released this Mar 27, 2019 · 1010 commits to master since this release

This release fixes CVE-2019-10063.

It has been discovered that the previous fix for CVE-2017-5226, which uses
seccomp to prevent sandboxed apps from using the (dangerous) TIOCSTI ioctl
was only incomplete on 64bit arches. This is now fixed.

  • seccomp: Only compare the low 32bit of the TIOCSTI ioctl args.
$ sha256sum flatpak-1.0.8.tar.xz 
1b1b419e3b2e8e75b18eb6442f0eb585fe402cea529729c15bbaf2622d746c3c  flatpak-1.0.8.tar.xz
Assets 3
You can’t perform that action at this time.